CVE-2025-9727

Name of the Vulnerable Software and Affected Versions D-Link DIR-816L version 206b01

Description A weakness exists due to the manipulation of the service argument within the soapcgi main function of the /soap.cgi file, leading to OS command injection. Remote exploitation is possible. The exploit has been made publicly available. This issue affects products that are no longer supported by the maintainer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.